Networking

Executive summary

Here's how a request is routed to our Kubernetes cluster. Once the image responds with the content, the process is reversed to display the results to the user.

Glossary

DNS: Translates domain names (like google.com) into IP addresses (like 172.217.14.238).

Ingress NGINX: A controller that uses NGINX as a web server to manage incoming traffic to a Kubernetes cluster. It routes traffic to different services based on URL, hostname, or other criteria.

Kubernetes: An open-source container orchestration platform for automating the deployment, scaling, and management of containerized applications.

Cert-manager: A tool for managing TLS certificates for Kubernetes. It automates the process of obtaining, renewing, and validating certificates for services exposed on the internet.

Diagrams

.inspection.alpha.canada.ca

As part of the deployments we carry out within the AI Lab, we needed a DNS that would allow us to deploy our services. Since we are not in production, we needed a name that is suitable for an alpha/staging environment that complies with the following guidelines:

• Alpha canada.ca
• Government of Canada Digital Standards

For more information, please refer to this pull request (PR) submitted to cds-snc so that they can subdelegate inspection.alpha.canada.ca to us:

• The pull request made to cds-snc (status: merged)

References

• Cert manager
• Ingress NGINX
• DNS
• Kubernetes